Sinapsis v4.3.3 — Hardening + Portability
Sinapsis v4.3.3 — Hardening + Portability
Hardening derived from Cortex v3.10 comparison (credit: Fernando Montero / fs-cortex) plus portability commands.
Added — Hardening
/downvotecommand: demote or archive instincts that give bad advice. Closes the feedback loop.- 3 extra scrubbing patterns in
observe_v3.py: Stripe (sk_live/sk_test), Slack (xoxb/xoxp), SendGrid (SG.*). Now 8 patterns (was 5). - Path traversal protection in
_instinct-activator.sh: blocks inject content containing../,~/,/etc/,/proc/. - Token budget cap (
TOKEN_BUDGET=1500): limits total chars injected per tool use. Prevents instinct loops. - Multi-session auto-promote: drafts require 5+ occurrences AND 3+ distinct sessions to promote. Tracks
sessions_seen[]. - 2 new pattern detectors in
_session-learner.sh: repetitions (same error in 3+ sessions) and agent patterns. Now 5 detectors (was 3). - GitHub Actions CI: test suite runs on push/PR across Ubuntu, macOS, Windows.
- Pre-push hook:
.githooks/pre-pushblocks push if any test suite fails. - Legacy file cleanup in
install.sh: removes obsolete files from v3.2/v4.4 on upgrade.
Added — Portability
/backup [path]— export full Sinapsis state (instincts, rules, operator state, commands, settings, CLAUDE.md + manifest) for sync/migration./restore [path]— import Sinapsis state with intelligent merge (by ID, keeps local occurrence data)./cleanup— remove v1 legacy files, orphan projects (30+ days inactive), old archives (60+ days).
Tests
- 83 passing (+ 14 new TDD tests in
tests/test-v433-hardening.sh)
Credits
- v4.3.3 hardening inspired by Fernando Montero / fs-cortex v3.10
- Confidence decay inspired by garrytan/gstack (MIT)
- v4.3.1 security audit by Fernando Montero (Fersora Solutions)
Commit: `013e573` · Date: 2026-04-13